Vulnerabilities > W3Eden

DATE	CVE	VULNERABILITY TITLE	RISK
2017-08-07	CVE-2014-9260	Unspecified vulnerability in W3Eden Download Manager The basic_settings function in the download manager plugin for WordPress before 2.7.3 allows remote authenticated users to update every WordPress option. network low complexity w3eden	8.8
2017-07-07	CVE-2017-2217	Open Redirect vulnerability in W3Eden Download Manager Open redirect vulnerability in WordPress Download Manager prior to version 2.9.51 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors. network low complexity w3eden CWE-601	6.1
2017-07-07	CVE-2017-2216	Cross-site Scripting vulnerability in W3Eden Download Manager Cross-site scripting vulnerability in WordPress Download Manager prior to version 2.9.50 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. network low complexity w3eden CWE-79	6.1

Vulnerabilities > W3Eden {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"W3Eden"}]}